A baby's eyes peer directly into the camera lens. A kid with a striped shirt looks up, then away. A boy in a policeman's costume, a gold star on his chest. A messy bedroom that reminds me of my own daughters, with an unmade bunk bed, a little girl's hat and headband, and Hello Kitty […]
Article URL: https://claude.com/blog/claude-platform-on-aws
Comments URL: https://news.ycombinator.com/item?id=48103042
Points: 12
# Comments: 3
In light of the ongoing npm supply chain compromises, I built safe-install:
https://www.npmjs.com/package/@gkiely/safe-install
It brings a couple of protections I wanted from npm but are not built in.
Similar to Bun’s trusted dependencies, it lets you disable install scripts by default and define a list of dependencies that are allowed to run build/install scripts:
https://bun.com/docs/guides/install/trusted
It also supports blocking exotic sub-dependencies, similar to pnpm’s `blockExoticSubdeps` setting:
https://gajus.com/blog/3-pnpm-settings-to-protect-yourself-f...
I was hoping npm would eventually add something like this, but it does not seem to be happening soon, so I made a small package for it.
Comments URL: https://news.ycombinator.com/item?id=48102636
Points: 3
# Comments: 0
Robinhood files confidentially for its second venture fund, this time targeting growth and early-stage startups.
The former OpenAI chief scientist may be estranged from the company, but he still came to its defense as he testified on Monday.
OpenAI is launching Daybreak, an AI initiative focused on detecting and patching vulnerabilities before attackers find them. Daybreak uses the Codex Security AI agent that launched in March to create a threat model based on an organization's code and focus on possible attack paths, validate likely vulnerabilities, and then automate the detection of the higher […]
Some of the positions focus on AI-native development, data engineering and analytics, cloud-based engineering, and agent and model development as well as prompt engineering and new AI workflows.
The company behind the robot lawn mower that ran me over has changed its tune. Yarbo now plans to completely remove the remote backdoor access that could have let bad actors reprogram the robot over the internet. Yarbo customers will be able to decide whether that feature even gets installed in the first place, co-founder […]
Production-version patches are coming online and should be installed pronto.
Thinking Machines, the AI company founded by former OpenAI CTO Mira Murati, announced Monday that it's working on something called "interaction models." The idea behind interaction models, according to Thinking Machines, is that they will let people "collaborate with AI the way we naturally collaborate with each other - they continuously take in audio, video, […]